Wpdeveloper

Essential Addons For Elementor

54 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-6244

  • EPSS 0.04%
  • Published 08.07.2025 01:43:46
  • Last modified 09.07.2025 13:52:15

The Essential Addons for Elementor – Popular Elementor Templates and Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the via `Calendar` And `Business Reviews` Widgets attributes in all versions up to, and including, 6.1....

5.4

CVE-2024-9993

  • EPSS 0.05%
  • Published 07.06.2025 11:17:51
  • Last modified 14.07.2025 16:42:49

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the eael_event_details_text parameter of Event Calendar Widget in all ver...

5.4

CVE-2024-9994

  • EPSS 0.05%
  • Published 07.06.2025 11:17:49
  • Last modified 14.07.2025 16:42:29

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the eael_pricing_item_tooltip_content parameter of the Pricing Table Widg...

7.1

CVE-2025-24752

  • EPSS 3.13%
  • Published 17.04.2025 15:48:11
  • Last modified 17.04.2025 20:21:48

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Reflected XSS. This issue affects Essential Addons for Elementor: from n/a through 6.0.14.

4.3

CVE-2025-39589

  • EPSS 0.04%
  • Published 16.04.2025 12:44:21
  • Last modified 16.04.2025 13:25:37

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPDeveloper Essential Addons for Elementor allows Retrieve Embedded Sensitive Data. This issue affects Essential Addons for Elementor: from n/a through 6.1.9.

6.5

CVE-2025-39590

  • EPSS 0.03%
  • Published 16.04.2025 12:44:20
  • Last modified 16.04.2025 13:25:37

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Stored XSS. This issue affects Essential Addons for Elementor: from n/a through 6.1.9.

5.4

CVE-2024-56063

  • EPSS 0.05%
  • Published 31.12.2024 23:15:41
  • Last modified 06.03.2025 14:25:09

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Stored XSS.This issue affects Essential Addons for Elementor: from n/a through 6.0.7.

5.7

CVE-2024-8979

  • EPSS 0.29%
  • Published 15.11.2024 10:15:05
  • Last modified 19.11.2024 17:05:08

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.0.9 via the 'init_content_lostpass...

5.7

CVE-2024-8978

  • EPSS 0.27%
  • Published 15.11.2024 10:15:04
  • Last modified 19.11.2024 17:04:38

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.0.9 via the 'init_content_register...

5.4

CVE-2024-8961

  • EPSS 0.08%
  • Published 15.11.2024 07:15:17
  • Last modified 19.11.2024 17:01:15

The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nomore_items_text’ parameter in all versions up to, and including, 6...